Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '202.112.0.0 - 202.113.255.255'

% Abuse contact for '202.112.0.0 - 202.113.255.255' is 'abuse@cernet.edu.cn'

inetnum:        202.112.0.0 - 202.113.255.255
netname:        BJR-CERNET
descr:          China Education and Research Network
descr:          Beijing Regional Network
country:        CN
org:            ORG-CEAR1-AP
admin-c:        CER-AP
tech-c:         CER-AP
abuse-c:        AC1685-AP
status:         ALLOCATED PORTABLE
remarks:        origin AS4538
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CERNET-AP
mnt-routes:     MAINT-CERNET-AP
mnt-irt:        IRT-CERNET-AP
last-modified:  2020-05-28T02:35:51Z
source:         APNIC

irt:            IRT-CERNET-AP
address:        Network Center,
address:        FIT-3-220, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
fax-no:         +86-10-62785933
e-mail:         abuse@cernet.edu.cn
abuse-mailbox:  abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
auth:           # Filtered
remarks:        timezone GMT+8
remarks:        abuse@cernet.edu.cn was validated on 2026-03-05
mnt-by:         MAINT-CERNET-AP
last-modified:  2026-05-25T09:07:47Z
source:         APNIC

organisation:   ORG-CEAR1-AP
org-name:       China Education and Research Network (CERNET)
country:        CN
address:        FIT 3-220,
address:        Tsinghua University
phone:          +86-10-62785983
fax-no:         +86-10-62785933
e-mail:         hostmaster@cernic.net
mnt-ref:        APNIC-HM
mnt-by:         APNIC-HM
last-modified:  2018-09-13T12:56:34Z
source:         APNIC

role:           ABUSE CERNETAP
country:        ZZ
address:        Network Center,
address:        FIT-3-220, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
e-mail:         abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
nic-hdl:        AC1685-AP
remarks:        Generated from irt object IRT-CERNET-AP
remarks:        abuse@cernet.edu.cn was validated on 2026-03-05
abuse-mailbox:  abuse@cernet.edu.cn
mnt-by:         APNIC-ABUSE
last-modified:  2026-03-05T06:40:20Z
source:         APNIC

role:           CERNET Helpdesk
address:        CERNET Center
address:        Beijing 100084, China
country:        CN
phone:          +86-10-6278-4049
fax-no:         +86-10-6278-5933
e-mail:         helpdesk@cernet.edu.cn
remarks:        abuse@cernet.edu.cn
admin-c:        XL1-CN
tech-c:         SZ2-AP
nic-hdl:        CER-AP
mnt-by:         MAINT-CERNET-AP
last-modified:  2020-09-03T09:14:12Z
source:         APNIC

% Information related to '202.112.0.0/13AS4538'

route:          202.112.0.0/13
descr:          CERNET
origin:         AS4538
mnt-by:         MAINT-CERNET-AP
last-modified:  2026-06-17T08:11:41Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.112.47.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8404
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;202.112.47.27.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026062901 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 30 02:00:09 CST 2026
;; MSG SIZE  rcvd: 106
Host info
27.47.112.202.in-addr.arpa has no PTR record
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 27.47.112.202.in-addr.arpa.: No answer

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
185.143.223.130 attackspam
2019-12-07T07:30:06.096572+01:00 lumpi kernel: [990157.077810] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.130 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=33152 PROTO=TCP SPT=43796 DPT=12810 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-12-07 15:02:21
212.129.145.64 attack
Dec  7 11:54:11 vibhu-HP-Z238-Microtower-Workstation sshd\[10128\]: Invalid user yoshiko from 212.129.145.64
Dec  7 11:54:11 vibhu-HP-Z238-Microtower-Workstation sshd\[10128\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.145.64
Dec  7 11:54:13 vibhu-HP-Z238-Microtower-Workstation sshd\[10128\]: Failed password for invalid user yoshiko from 212.129.145.64 port 42104 ssh2
Dec  7 12:00:41 vibhu-HP-Z238-Microtower-Workstation sshd\[10497\]: Invalid user wonkyo from 212.129.145.64
Dec  7 12:00:41 vibhu-HP-Z238-Microtower-Workstation sshd\[10497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.145.64
...
2019-12-07 14:42:05
193.188.22.229 attackbotsspam
Tried sshing with brute force.
2019-12-07 14:28:45
159.65.149.131 attackspambots
Dec  7 07:30:09 server sshd\[3601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.149.131  user=root
Dec  7 07:30:11 server sshd\[3601\]: Failed password for root from 159.65.149.131 port 41506 ssh2
Dec  7 09:30:26 server sshd\[4591\]: Invalid user ubuntu from 159.65.149.131
Dec  7 09:30:26 server sshd\[4591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.149.131 
Dec  7 09:30:27 server sshd\[4591\]: Failed password for invalid user ubuntu from 159.65.149.131 port 44467 ssh2
...
2019-12-07 14:48:03
218.92.0.158 attack
Dec  7 07:31:51 icinga sshd[25499]: Failed password for root from 218.92.0.158 port 35220 ssh2
Dec  7 07:31:55 icinga sshd[25499]: Failed password for root from 218.92.0.158 port 35220 ssh2
Dec  7 07:32:00 icinga sshd[25499]: Failed password for root from 218.92.0.158 port 35220 ssh2
Dec  7 07:32:03 icinga sshd[25499]: Failed password for root from 218.92.0.158 port 35220 ssh2
...
2019-12-07 14:41:17
192.95.30.27 attack
Automatic report - XMLRPC Attack
2019-12-07 15:00:33
218.92.0.154 attackspam
Dec  7 07:30:22 legacy sshd[27327]: Failed password for root from 218.92.0.154 port 64049 ssh2
Dec  7 07:30:35 legacy sshd[27327]: error: maximum authentication attempts exceeded for root from 218.92.0.154 port 64049 ssh2 [preauth]
Dec  7 07:30:41 legacy sshd[27336]: Failed password for root from 218.92.0.154 port 30353 ssh2
...
2019-12-07 14:41:51
65.98.111.218 attackspambots
Dec  7 09:36:34 microserver sshd[12350]: Invalid user webadmin from 65.98.111.218 port 33329
Dec  7 09:36:34 microserver sshd[12350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.98.111.218
Dec  7 09:36:36 microserver sshd[12350]: Failed password for invalid user webadmin from 65.98.111.218 port 33329 ssh2
Dec  7 09:42:12 microserver sshd[13205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.98.111.218  user=backup
Dec  7 09:42:15 microserver sshd[13205]: Failed password for backup from 65.98.111.218 port 43320 ssh2
Dec  7 09:53:19 microserver sshd[14792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.98.111.218  user=root
Dec  7 09:53:21 microserver sshd[14792]: Failed password for root from 65.98.111.218 port 53196 ssh2
Dec  7 09:58:39 microserver sshd[15608]: Invalid user 0 from 65.98.111.218 port 58128
Dec  7 09:58:39 microserver sshd[15608]: pam_unix(sshd:auth): authenti
2019-12-07 15:15:54
222.186.52.78 attackbots
Dec  7 08:29:30 sauna sshd[189375]: Failed password for root from 222.186.52.78 port 51611 ssh2
...
2019-12-07 14:52:25
206.189.137.113 attack
Dec  7 00:46:05 server sshd\[21331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.137.113  user=root
Dec  7 00:46:06 server sshd\[21331\]: Failed password for root from 206.189.137.113 port 51704 ssh2
Dec  7 09:48:30 server sshd\[11220\]: Invalid user test from 206.189.137.113
Dec  7 09:48:30 server sshd\[11220\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.137.113 
Dec  7 09:48:32 server sshd\[11220\]: Failed password for invalid user test from 206.189.137.113 port 48192 ssh2
...
2019-12-07 14:57:53
106.75.148.114 attackspambots
Dec  7 01:40:19 linuxvps sshd\[61793\]: Invalid user testing from 106.75.148.114
Dec  7 01:40:19 linuxvps sshd\[61793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.114
Dec  7 01:40:20 linuxvps sshd\[61793\]: Failed password for invalid user testing from 106.75.148.114 port 39210 ssh2
Dec  7 01:48:05 linuxvps sshd\[923\]: Invalid user typicalsupport@123 from 106.75.148.114
Dec  7 01:48:05 linuxvps sshd\[923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.114
2019-12-07 14:48:38
106.13.106.46 attack
Dec  7 07:37:13 jane sshd[30181]: Failed password for root from 106.13.106.46 port 57902 ssh2
...
2019-12-07 14:49:01
218.92.0.181 attackspambots
2019-12-07T06:47:06.929635abusebot-4.cloudsearch.cf sshd\[532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.181  user=root
2019-12-07 14:56:19
177.19.238.230 attackspam
namecheap spam
2019-12-07 14:46:29
200.52.29.146 attack
Honeypot attack, port: 23, PTR: 200-52-29-146.dynamic.ultrawave.com.br.
2019-12-07 14:44:02

Recently Reported IPs

34.145.143.120 45.154.98.112 51.159.125.200 153.117.34.220
2606:4700:10::6814:4848 2606:4700:10::6814:5945 109.162.251.223 109.207.174.99
4.232.93.183 157.20.241.76 2606:4700:10::6814:8926 2606:4700:10::ac43:2106
47.100.117.103 171.83.53.230 221.232.8.183 161.153.121.253
195.96.139.14 36.156.22.2 111.68.9.190 112.121.183.206